99 percent of Belgian companies in the industrial sector have experienced a cyber incident in the past year, according to a survey by Kaspersky.
Almost all Belgian industrial companies have encountered a cyber incident in the past year, according to a survey by Kaspersky of manufacturing, oil and gas and energy companies. For 50 percent, two to three attacks resulted in operational downtime. In addition, one-third of respondents indicated that the complexity of OT environments is a major challenge. These figures demonstrate a shortage of preventive measures.
Multiple attacks and downtime
Most affected companies were attacked multiple times. For 50 percent, two to three attacks resulted in operational downtime. In a third of the companies, this happened once, and 15 percent reported four to five incidents. These figures indicate a lack of preventive measures. Despite the high impact of downtime, damage control remains the primary approach.
read also
The survey found that 85 percent of executives consider downtime to be the top concern. Other major concerns are physical security breaches and internal threats, both cited by 24 percent of respondents. In addition, unauthorized access and data theft (22 percent) are concerns, as is lack of network visibility (22 percent).
Complexity of OT environments
A third of respondents indicated that the complexity of operational technology (OT) and industrial control systems is a major challenge. OT, which is critical for managing physical processes and machinery, appears to be particularly vulnerable to targeted cyber attacks. These attacks can have serious consequences, including disruptions to production lines and threats to critical infrastructure.
read also
You can’t force IT principles on OT environments
Furthermore, 35 percent find it difficult to quantify cyber risks, such as the impact on production and reputation. Only 20 percent see lack of time as an obstacle, suggesting that it is primarily complexity and lack of understanding that hinder effective security.
Dangers of “security through obscurity”
According to Jornt van der Wiel, security expert at Kaspersky, companies often underestimate their vulnerability because they think their non-standard systems provide protection. However, cybercriminals know how to quickly access manuals and information to carry out targeted attacks. This highlights the need for a better security strategy.
The survey, conducted in August 2024, included 802 C-level decision makers from Belgium, the Netherlands and the United Kingdom, including 201 Belgian respondents. The report underscores the need for industrial organizations to invest more in proactive cybersecurity to prevent serious damage.